Healthcare Information Security


OIG Stresses Information Security, Data Integrity for 2017

June 8, 2017 - Improving data integrity and information security measures were just two of the areas noted in the recent OIG Semiannual Report to Congress. “With the sheer amount of data and its complexity, however, the Department continues to face challenges in effectively using data to detect and prevent improper payments and to ensure safety and quality of care for program beneficiaries,”...

More Articles

OIG Notes Va. Medicaid Information Security Vulnerabilities

by Elizabeth Snell

An Office of Inspector General (OIG) audit found the Virginia Medicaid Management Information System (MMIS) to have information security vulnerabilities. “Virginia did not adequately secure its Medicaid data and information systems, which...

HHS OIG Phone Scam Raises Patient Data Privacy Concerns

by Elizabeth Snell

The HHS Office of Inspector General (OIG) hotline number for reporting fraud was recently spoofed, according to an HHS statement. Individuals reported receiving phone calls claiming to be from HHS OIG, requesting that they confirm personal information...

OIG Finds IT Weaknesses in MA Medicaid Management Info System

by Elizabeth Snell

The Massachusetts Medicaid Management Information System (MMIS) was not adequately protected, which could have compromised the integrity of the state’s Medicaid program, according to a recent Office of Inspector General (OIG) report. These...

HHS Information Security Programs Better, Can Still Improve

by Elizabeth Snell

The Department of Health and Human Services has made improvements to its information security programs, including in its compliance with the Federal Information Security Modernization Act of 2014 (FISMA), but there are still areas that can become...

OIG Finds Slight Increase in Medicare Information Security Gaps

by Elizabeth Snell

Evaluations of the Medicare administrative contractor (MAC) information security program found that the programs were adequate in scope sufficiency but still had an increase in security gaps from the previous year. The Office of Inspector General...

EHR Contingency Plans Part of OIG 2016 Health IT Focus

by Elizabeth Snell

The Office of Inspector General (OIG) explained in its recent semiannual report to Congress how reviewing EHR contingency plans in healthcare organizations and wireless penetration tests of select CMS data centers were key areas of health IT...

OIG to Focus on HHS Information Security, Penetration Testing

by Elizabeth Snell

The Office of Inspector General (OIG) plans to audit the Department of Health and Human Services (HHS) information security controls to track drug prescription reimbursements, according to the 2017 OIG work plan. HHS will also be subject to penetration...

NY Can Still Improve Health Exchange Data Security Measures

by Elizabeth Snell

The Office of Inspector General (OIG) determined in a recent investigation that New York did  implement health insurance exchange data security measures in its web site and database, but improvements must still be made to ensure that PII...

OIG Report Finds CO Medicaid Data Security Controls Lacking

by Elizabeth Snell

Colorado’s Medicaid data security may have increased risk due to vulnerabilities found in the Colorado Department of Health Care Policy and Financing (HCPF) information systems according to a recent investigation by the Office for Inspector...

Information Security Weaknesses in MN Health Insurance Exchange

by Elizabeth Snell

Minnesota recently implemented security controls across its health insurance exchange (MNsure), but there are still information security weaknesses that could affect PII security, according to the Office of Inspector General (OIG). Improvements...

Data Security Vulnerabilities Found in CMS Wireless Networks

by Elizabeth Snell

While the Centers for Medicare and Medicaid Services (CMS) has effective security controls in place to prevent cybersecurity attacks, some data security vulnerabilities were found in its wireless networks, according to a recent Office of Inspector...

Most Hospitals Consider EHR Security in Contingency Planning

by Elizabeth Snell

Nearly two-thirds of hospitals reported that EHR security is considered through their application of  HIPAA rules as they implement contingency planning, the Office of Inspector General found. Furthermore, when it comes to EHR contingency...

Why Strong Health Insurance Exchange Security is Needed

by Elizabeth Snell

With the Patient Protection and Affordable Care Act (ACA) creating health insurance exchanges across the country so business and individuals can shop for insurance, data security must be an essential aspect. Without the necessary health insurance...

Report Shows Medicare Healthcare Data Security Gaps

by Jacqueline Belliveau

In its annual review of health IT security programs for Medicare administrative contractors (MACs), the Office of Inspector General revealed that MACs experienced many challenges with developing and implementing comprehensive healthcare data...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks